The attacker used stolen Okta credentials to gain access to Cloudflare’s Atlassian server. It had limited access to the wiki, bug database, and some source code repositories, but had access to the global network, data centers, SSL keys, customer data, etc. had no access.
Extensive measures were taken to rectify the situation, including code rotation and tightened access controls.
Cloudflare emphasizes swift action to contain the threat and comprehensive measures taken once it was eliminated. They reassure customers that their data will remain safe and highlight the lessons learned from this incident.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
